Sunday, 15 January 2012

This case about a Miami businessman is suing Bank of America over $90,000 he says was stolen from his online banking account by Latvian cybercriminals.

The 42-year old businessman says the cash was transferred from his account to Parex Bank in Latvia without his approval. About $20,000 of the money was withdrawn before the account was frozen. A subsequent Secret Service investigation detected the presence of the 'coreflood' keylogging Trojan on the businessman's computer.

Bank of America maintains that it cannot be held responsible for the loss since its systems were not hacked into and that all appropriate measures were taken to complete the transfer. In a complaint filed with the Miami Circuit Court on Thursday, the businessman alleges that Bank of America was negligent and failed to protect him from a known online banking risk.

Comments: The action could become a test case for determining bank liability in phishing frauds. Lawyers representing the victim have told the Miami Sun-Suntinel that the complaint could evolve into a class action suit to include other online banking customers who have had smaller sums rifled from their accounts.

With the dramatic rise of online fraud cases over the past several years, ecommerce sites and law enforcement agencies are finding themselves playing "catch-up" in an effort to stop the increasingly clever scams of Internet con men. Frustrated by the apparently widening gap between good guys and bad guys, many victims are banding together to share information to help bring Cybercriminals to justice.

Some term these groups "Vigilantes." But, somewhere between "vigilante" and online fraud "victim" is a phenomenon that perhaps needs its own term: Cybervigilism. Being vigilant is to be watchful. When it comes on online fraud, here's one more case that proves that Cybervigilism is alive and well.

The "Shaes"

Mark and Nancy Shae offered Web-site design services and belonged to an online community of Adult Webmasters in 2002. After participating in discussion forums for 5 months, Nancy revealed in October that her husband was sick with cancer.

When Nancy Shae later wrote to fellow Webmasters in an online forum that her husband had died from the disease, members of the community reached out a helping hand. Some members donated services, while others sent Nancy money. Little did they know that the woman they thought was Nancy Shae was really Nancy Dreksler, half of a husband-and-wife team wanted for fraud by officials in Nevada and Arizona, according to authorities.

But while many members pitched in to help their colleague, one member was skeptical.

Initially, "Blaze" (his online handle) received angry responses when he questioned the truth of Nancy's claims. However, a little research uncovered some glaring inconsistencies in Nancy's story. Determined to know the truth, Blaze hired a private investigator to visit the Shaes' home in Mesa, Arizona.

"It was too late. We had apparently missed them by hours," Blaze said. "But we kept our eyes out for them and saw their next scam on eBay. We knew it was just a matter of time before they tried to take the Webmaster community again."

The "Myers"

While Blaze was correct in thinking the Shaes were serial offenders, he was unaware of another online community scammed by the couple 10 months earlier. Authorities believe that the Drekslers defrauded members of a site set up for marine and reef aquarium hobbyists in January 2002. They believe the Drekslers used the alias Johanna Myers to sell aquarium equipment on eBay and to ReefCentral.com members. The User ID they used on eBay had been registered in October 2001, and negative feedback began rolling in on the account on January 12, 2002. eBay ultimately suspended the account, but the Drekslers popped up again on eBay.

The "Boselis"

In February 2003, members of an online-auction chat board noticed suspicious activity on an eBay account "mylittle1s." The User ID belonged to "Renee Boseli," an alias for Michael and Nancy Dreksler. One victim alerted Arizona law enforcement officials in March, and Detective Bruce Cornish of the Coconino County Sheriff's Dept. contacted eBay. On March 5, eBay suspended mylittle1s, but it was too late: Det. Cornish found the Drekslers' residence abandoned, with a post office box full of cashier's checks and money orders made out to Renee Boseli.

AuctionBytes' coverage of the mylittle1s case caught the attention of Rachel Konrad, a reporter with the Associated Press. Blaze and his colleagues read Konrad's AP article on CNN.com on March 26, and saw similarities between the Drekslers and Mark and Nancy Shae. They were a husband and wife team, the wife was named Nancy, and the eBay ID mylittle1s was a variation of a password used on the Webmaster community bulletin boards. But the CNN article reported the Drekslers had fled their Munds Park, Arizona residence.

Comments: I believe that with the information that is available on the Internet and the ability to connect to each other instantly is just naturally going to lead to people working together to find people that wronged them. However I wouldn't necessarily go as far as calling it vigilantism. There is a distinct difference between someone that tracks down another person and presents the information to the law enforcement, compared to someone who tracks down another person and proceeds to "enforce" law on them."

With the explosion of social media, teenagers have been handed immediate access to an open cyber-battlefield. Too many negative comments are blasted online with a high possibility of being seen by many.

During my generation we hung out at the mall, rode bikes to the skate-park or school to explore. We socialized outside, played outside, and of course fought outside. Today the internet has become the playground for the generation of young. This is where kids come to socialize, surf the net, and where some come to, verbally attack students, teachers, principals or even parents.

Anyone can set up a Facebook account, MySpace, or blog, and can easily post hurtful comments. Because not all comments show the author’s name, these comments are difficult to track.

The National Crime Prevention Council defines cyber-bullying as “the process of using the internet, cell phones or other devices to send or post text or images intended to hurt or embarrass another person.”

What may seem like a student’s right to privacy and free speech, very well may be defamation of character with potential legal consequences. Many students have no idea what challenges they could face. This should make it a priority moving into the 2012 school year to continue recognizing Cyberbullying and how states should respond.

The consequences can range from violation of school code leading to possible suspension from school or not being allowed to participate with afterschool sports. Cyber-bullies beware; the New Year brings new laws to many states.

Two examples are California and Illinois:

1) California passed Assembly Bill 9 this year and it will go into effect January 1, 2012. This bill will “require the policy adopted by the local educational agencies to prohibit discrimination, harassment, intimidation, and bullying based on actual or perceived characteristics.” This bill also gives school districts the right to suspend and in some cases, expel students who are caught.

2) Illinois passed HB3281 amending current School Code. PA 97-0340 is also becoming law January 1, 2012. This bill provides that “the gross disobedience or misconduct for which a school board may expel pupils includes that perpetuated by electronic means.” This includes making explicit threats on an internet site against school employees, students, or any school-related personnel.

Cyber-bullying is still a threat to student’s safety, however, due to the efforts by ikeepsafe.org; the hard work is paying off. Many school districts see the tremendous value in promoting responsible digital citizenship.

Comment:Around 10 percent of all adolescents in grades 7-9 are victims of internet bullying. 'This type of bullying can be more serious than conventional bullying. At least with conventional bullying the victim is left alone on evenings and weekends', says Ann Frisén, Professor of Psychology at the University of Gothenburg.

'Victims of internet bullying or cyber bullying have no refuge. Victims may be harassed continuously via SMS and websites, and the information spreads very quickly and may be difficult to remove. In addition, it is often difficult to identify the perpetrator.'

Education can help considerably in preventing and dealing with the consequences of cyber bullying. The first place to begin an education campaign is with the kids and teens themselves. We need to address ways they can become inadvertent cyber bullies, how to be accountable for their actions and not to stand by and allow bullying (in any form) to be acceptable. We need to teach them not to ignore the pain of others.

Sunday, 8 January 2012

This case is about the modus operandi of the accused was to hack into the eBay India website and make purchases in the names of credit cardholders. Two persons, including alleged mastermind Debasis Pandit, a BCA student, were arrested and forwarded to the court of the sub divisional judicial magistrate, Rourkela. The other arrested person is Rabi Narayan Sahu. Superintendent of police D.S. Kutty said the duo was later remanded in judicial custody but four other persons allegedly involved in the racket were untraceable. A case has been registered against the accused under Sections 420 and 34 of the Indian Penal Code and Section 66 of the IT Act and further investigation is on.

While Pandit, son of a retired employee of Rourkela Steel Plant, was arrested from his Sector VII residence last night, Sahu, his associate and a constable, was nabbed at his house in Uditnagar.

Pandit allegedly hacked into the eBay India site and gathered the details of around 700 credit cardholders. He then made purchases by using their passwords.

The fraud came to the notice of eBay officials when it was detected that several purchases were made from Rourkela while the customers were based in cities such as Bangalore, Baroda and Jaipur and even London, said V. Naini, deputy manager of eBay. The company brought the matter to the notice of Rourkela police after some customers lodged complaints. Pandit used the address of Sahu for delivery of the purchased goods, said police. The gang was involved in train, flight and hotel reservations. The hand of one Satya Samal, recently arrested in Bangalore, is suspected in the crime. Samal had booked a room in a Bangalore hotel for three months. The hotel and transport bills rose to Rs 5 lakh, which he did not pay. Samal was arrested for non-payment of bills, following which Pandit rushed to Bangalore and stood guarantor for his release on bail.

Comments: The Internet serves as an excellent tool for us, allowing us to easily and inexpensively search the information we want, but the Internet is also provide an excellent tool for fraudsters.

In the largest EBay case ever prosecuted in Los Angeles County, a man was sentenced Friday to a three-year term for taking hundreds of thousands of dollars from people who never got computers they bought online.Chris Chong Kim, 28, will be incarcerated at night at a state facility but will be allowed to work during the day, with part of the money he earns going to repay his victims.

Kim, who pleaded no contest to grand theft, agreed to pay restitution of about $600,000 to his victims, said Deputy Dist. Atty. Jonathan Fairtlough. Kim was sentenced by Superior Court Judge David Horwitz.

Kim had a business site on EBay called CalvinAuctions.com and had been selling high-end computers, laptops and other equipment for two years. But he stopped shipping merchandise in April 2002, prosecutors said.More than 170 customers around the world have registered complaints against Kim and his company, authorities said.

In addition to losses of about $180,000 to individual buyers, the Internet payment service PayPal, which EBay owns, paid $360,000 to reimburse Kim's customers, Fairtlough said. Bank of America and EBay also lost money, the prosecutor said.

Comment :keep these tips in mind when considering online transactions:

Verify with a credible source before you send any money;

Ask questions and do not ignore any suspicions you may have;

Do not share your personal or financial information with someone you do not know;

Never give out personal information in an email or over the telephone;

Saturday, 7 January 2012

U.S. citizens reported losing more than $550 million in 2009 in Internet fraud, falling prey to a variety of increasingly sophisticated scams, according to a report by the Internet Crime Complaint Center.The loss was more than twice that reported in 2008, according to the agency, a partnership of the FBI and the privately funded National White Collar Crime Center. Based in West Virginia, the center tracks Internet crime around the world."Criminals are continuing to take full advantage of the anonymity afforded them by the Internet. They are also developing increasingly sophisticated means of defrauding unsuspecting consumers," said Donald Brackman, director of the National White Collar Crime Center.

Typical of the cases reported last year was a scam in which a Miami Beach man advertised vacation rentals on Craigslist.org but stopped communicating with customers after they paid thousands of dollars in down payments, according to the report. Police arrested a suspect in that case, saying he stole more than $30,000 from 16 victims. Another common fraud in 2009 was the "hit man scam," in which threatening e-mails were sent to victims. The e-mails purported to be written by hit men who had been paid to kill the victims. They said they would let the victims live if they paid them thousands of dollars. Many of those threatening e-mails were traced to West Africa,

"Internet crime keeps going up. It's cheaper. It's faster. It beats the old method of knocking on your door and trying to get you to give them money," "If you send out 1 million e-mails and even a minimal number of people return money, you'll make more money than a working person would in a very long time in a legitimate job."Computer viruses capable of secretly downloading passwords and account numbers are also a problem. Spread through e-mail attachments, the viruses enable criminals to steal from bank and credit card accounts.

In April 2009, the Internet Crime Complaint Center linked 103 cases in which victims reported paying for vehicles and motorcycles that did not arrive. The victims lost a combined $360,000 that was sent to a fraudulent financing center suggested by the seller, the report said.

Comment:Consumers can take precautions to avoid being victimized, so they should install up-to-date computer firewalls, use only reputable payment centers to make purchases online, and not respond to unsolicited e-mails or pop-up ads.

The Federal Trade Commission has closed down an online pyramid scheme that had allegedly bilked investors of $6 million, one of many operations that the FTC claims is being run by companies using the Net as a home base for their scams.

The allegations against Fortuna Alliance constitute the 12th and the largest online fraud case to date, according to the federal agency. The FTC issued a temporary restraining order against Fortuna after city officials in Bellingham, Washington, reported suspicious activity on the company's Web site."What if you paid $250 a month which produced a minimum of $5,250 income each month for you, while you watched?" asked an offering on Fortuna's site. "Well that's exactly what would happen if you hired Fortuna Alliance as your personal Marketing Expert."No fewer than 17,000 people signed up, sending the online company between $250 and $1,750 each for a total of $6 million.

The FTC has sued the five officers who run the nine-year-old Fortuna for operating an investment program that the agency described as a classic pyramid scheme. Typically in such operations, a handful of people at the top of the "pyramid" make their money from unsuspecting investors at the bottom--who are often left with nothing but debt to show for their contributions.

Comment: consumers need to make themselves aware of such scams, despite all the positive things the Internet has to offer, there's no reason not to think that bad guys will be there. It's much harder to find perpetrators in cyberspace than in real space and even harder to track them across international borders.

In this case, a woman in Florida reported that she sent $225,000 to a Bozeman man who claimed he had a stockpile of unrefined gold and was looking for investors to finance refineries. He promised big returns. When that didn’t materialize, the investor got suspicious. She became angry over the investment. When he followed the money and confirmed their suspect, Carl Estep, wasn’t putting his investors’ money where he’d promised, Rice set up a sting. Only this time, he would play the patsy. Working with a female FBI agent from the Billings resident agency, Rice staged a ruse to pose as husband-and-wife investors who wanted a piece of Estep’s venture. They set up a meeting at the airport in Bozeman to make it seem as though they had just arrived from Chicago.

Epilogue

When investors didn’t see their promised returns, Carl Estep made elaborate excuses as to why they could not be paid. In reality, Estep did not own any refineries. He did not own the barrels of rock and sand. He did not make any expenditure to develop refineries, and he did not invest money overseas. He simply used the money for numerous personal expenditures, including cars, overseas travel, daily expenses, and unreasonably large expenses on his hunting dogs.

In speaking with FBI agents, Estep acknowledged that he spent investor money on personal items and his that statements to investors were not 100 percent true since they did not know their money was used for his personal gain.

- Press release

“We came off the plane, we met him, and we sat down in the coffee shop,” Rice says. “I wore a camera and a wire—and he pitched the whole deal to me, the exact same deal that he pitched to the victim.”

It didn’t end there, though. Estep then escorted the would-be investors to a warehouse where he showed them stacks of barrels that he claimed each contained about 1,200 ounces of unrefined gold.

“It was the exact same pattern as what he did with these other people,” Rice says. “He flew them out here. He took them to the warehouse. He showed them the barrels stacked up. All he’d done was get his hands on a bunch of barrels with gravel in them. The rest was easy for him.”

The FBI tested samples from the barrels—which didn’t contain gold—and identified more victims, including the provider of the warehouse. Confronted with the evidence, Estep pleaded guilty in January and is now serving a four-year sentence.

“It’s not a small world for us anymore,” says Rice, an Idaho native, describing how even this once-remote area is no longer so, due in part to the Internet.

Comments:The Internet offers a global marketplace for consumers and businesses, but crooks also recognize the potentials of cyberspace. You can protect yourself by learning how to recognize the danger signs of fraud. If you are a victim or attempted victim of Internet fraud, it's important to report the scam quickly so that law enforcement agencies can shut the fraudulent operations down.

In the morning of April 7, 1999, users of Internet bulletin boards hosted by Yahoo! Finance and other companies devoted to the discussion of a company named PairGain saw a message from an individual identifying herself as Stacey Lawson of Knoxville Tennessee. The message reported that PairGain, a telecommunications Equipment Company located in California, would be purchased for 1.35 billion dollars by an Israeli company. The message contained a link to what it stated was the Bloomberg News story reporting the impending merger. Other messages, purportedly from other individuals, also discussed the news in excited terms advocating that readers purchase the stock immediately. When users clicked on the link in the first message they were taken to what appeared to be a legitimate Bloomberg News web page containing a detailed story on the merger. Although the page looked exactly like a real Bloomberg page, even to the point of including other links that took the reader back to the real Bloomberg service, it was, in fact, bogus and the story of the merger was false. Because the message was reported early east coast time, no one could reach PairGain for comment because of the time difference. No one could reach the Israeli company because it was an Israeli holiday. In just two hours, the false news triggered a buying spree -- PairGain stock rose over 31% on NASDAQ with ten times its normal volume. When the hoax was exposed the stock fell causing thousands of victims to lose substantial amounts of money.

The cyber investigation focused on messages posted to Yahoo! and on the bogus Bloomberg web page. The Yahoo! messages were unrevealing, containing screen names such as Stacey LTN that were clearly false. Examination of the bogus web page revealed it was hosted on an Internet web hosting service named Angelfire. Angelfire is a free service that allows users to create their own web pages asking only that they provide subscriber information and an email account so that a password can be emailed to the user.

Comments:The Internet serves as an excellent tool for investors, allowing them to easily and inexpensively research investment opportunities. But the Internet is also an excellent tool for fraudsters.The same scams that have been conducted by mail and phone can now be found on the World Wide Web and in email, and new cyber scams are emerging. It's sometimes hard to tell the difference between reputable online sellers and criminals who use the Internet to rob people. In order to protect ourselves ,we should learn how to recognize the cyber scams.

This case talks about Internet marketing and retail fraud. This a fast-growing area of internet fraud perpetrated by dishonest internet marketing and retail sites. A variety of products and services are involved. The customer is tricked by a legitimate-looking site and effective marketing into giving their credit card information and CVV number, or sending cash by other means, in exchange for what they believe to be the goods or services. The goods are never arrive, turn out to be fake, or are products worth less than those advertised. Where a credit card is involved, the perpetrators may also aim to use the customer's credit card information to obtain cash or to make purchases of their own.

A common example of this type of fraud is pornographic websites that advertise free access. Upon further inspection, however, a credit card is required "for age verification purposes only." The scammers then use your credit card information to make large charges to the credit card.

In cases involving fake or worthless goods, many are health products, related to health fraud. These products might advertise anything from a quick way to lose weight to a cure for a serious disease, and may: promise a lot, claiming they can "do it all" claim to be a "scientific breakthrough", featuring fake doctors or scientists making claims for the product, with technical jargon that only experts in the field know is used falsely feature a long list of "personal testimonials", with no way to check if they are true or fake.

Comments: Once your credit card information is given to these types of scam companies, they usually will charge you no matter what type of cancellation you attempt to go through. This can often be overcome by contacting the credit card company. Credit and consumer protection laws in many countries hold the credit card company liable to refund their customers' money for goods or services purchased with the card but not delivered. The loss is then suffered by the card company, but ultimately passed on to customers in higher interest and fees.

This is a talk about Internet ticket fraud case. A variation of internet marketing fraud is offering tickets to sought-after events such as concerts, shows and sports events. The tickets turn out to be fake or are simply never delivered. The proliferation of online ticket agencies and the existence of experienced and dishonest ticket touts have fuelled this kind of fraud in recent years. Many such scams are run by British ticket touts, though they may base their operations in other countries.

A prime example was the global Beijing Olympic Games ticket fraud run by US-registered Xclusive Leisure and Hospitality, sold through a professionally-designed website, www.beijingticketing.com with the name "Beijing 2008 Ticketing". On 4 August it was reported that more than $50 million worth of fake tickets had been sold through the website. On 6 August is was reported that the person behind the scam, which was wholly based outside China, was a British ticket tout, Terance Shepherd.

My personal options:Internet bring us some convenience, however it is also dangerous for us. Internet also provides a tool for fraudsters. Whenever we buy something we must be careful.

About Me

Hi, I am Zhao Yanli, a MBA student at MMU University in Malaysia. I created this Blog for my Cyberlaw assignment. As you can see I uploaded cases about cyber crime, and at the end of each one I added my own opinion.

DISCLAIMER

This web log is created for the purposes of a MBA project for the subject BYL 7134, Cyberlaw. The materials posted on this web log are for the purposes of the assignment as well as study and non-profit research. Appropriate acknowledgments to the materials that do not belong to the web log owner have been publicly made. If you are the author or a copyright owner of any of the articles posted in this weblog and you object to such posting on any grounds, including copyright infringement, please contact me and I will take your material down. I state herein that I am relying on the doctrine of fair use. Thank you for supporting my blog.